From the course: CompTIA CySA+ (CS0-002) Cert Prep: 7 Compliance and Assessment
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Security policy framework
From the course: CompTIA CySA+ (CS0-002) Cert Prep: 7 Compliance and Assessment
Security policy framework
- [Instructor] Security professionals do a lot of writing. We need clearly written guidance to help communicate to business leaders, end users, and each other about security expectations and responsibilities. In some cases, we're setting forth mandatory rules that everyone in the organization must follow, while in other cases we're simply giving advice. Each of these roles requires communicating a little bit differently. That's where the security policy framework comes into play. Most security professionals recognize a framework consisting of four different types of documents, policies, standards, guidelines, and procedures. Security policies are the bedrock documents that provide the foundation for an organization's information security program. They are often developed over a long period of time and are very carefully written to describe an organization's security expectations. Compliance with policies is mandatory, and…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.